No less than 330,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that has come under active exploitation in the wild.
Cybersecurity firm Bishop Fox, in aΒ reportΒ published last week, said that out of nearly 490,000 Fortinet SSL-VPN interfaces exposed on the internet, about 69 percent remain unpatched.
CVE-2023-27997
The legitimate command-and-control (C2) framework known as Sliver isΒ gainingΒ more tractionΒ from threat actors as it emerges as an open source alternative toΒ Cobalt StrikeΒ and Metasploit.
The findings come from Cybereason, whichΒ detailedΒ its inner workings in an exhaustive analysis last week.
Sliver, developed by cybersecurity company BishopFox, is a Golang-based cross-platform post-exploitation